> There are also a number of calloc() overflow errors out there that > affect openssl. Goto http://www.securitytracker.com and search on > calloc() or openssl and you'll get a good list Where do you find calloc() used in OpenSSL? OpenSSL does all memory allocations via OPENSSL_malloc and OPENSSL_realloc wrapper functions that use malloc and realloc by default. I just grepped OpenSSL source and did not find a single occurence of calloc. Arne
This archive was generated by hypermail 2b30 : Wed Apr 16 2003 - 08:08:58 PDT